{"uuid": "4b97e532-3527-426a-ae4d-a428c8b8309b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-31970", "type": "seen", "source": "https://t.me/cvedetector/1576", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-31970 - AdTran SRG 834-5 SSH Default Credentials Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-31970 \nPublished : July 24, 2024, 4:15 p.m. | 35\u00a0minutes ago \nDescription : AdTran SRG 834-5 HDC17600021F1 devices (with SmartOS 11.1.1.1 and fixed in Version 12.1.3.1) have SSH enabled by default, accessible both over the LAN and the Internet. During a window of time when the device is being set up, it uses a default username and password combination of admin/admin with root-level privileges. An attacker can exploit this window to gain unauthorized root access by either modifying the existing admin account or creating a new account with equivalent privileges. This vulnerability allows attackers to execute arbitrary commands. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-24T19:09:35.000000Z"}